Appl. No. 09/836,894 

Reply to Office Action of October 18, 2004 
IN THE CLAIMS: 

This listing of claims will replace all prior versions, and listings, of claims in the application: 
Listing of Claims: 

1 . (Withdrawn) A method for communicating a transaction between an originating 
computer and a destination computer, the method comprising the steps of 

processing transaction data from an application suite at the originating computer; 

generating standardized data transactions based on predefined definitions; 

sending the standardized transaction data from the originating computer to the 
destination computer; 

receiving the standardized transaction data by the destination computer; 

generating transaction data based on the attributes of the destination computer and 
storing the transaction data at the destination computer; and, 

processing the transaction data by a target application suite at the destination 
computer. 

2. (Withdrawn) The method for communicating a transaction as in claim 1, wherein 
the generating transaction data step comprises converting the transaction data from its original 
format to a standardized format. 

3. (Withdrawn) The method for communicating a transaction as in claim 2, wherein 
the generating transaction data step converts the data from the standardized format to a format 
readable by the target application suite. 

4. (Withdrawn) The method for communicating a transaction as in claim 1, the 
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generating standardized data transactions comprising creating unique encryption keys for 
encoding and decoding transaction data. 

5. (Withdrawn) A system for communicating a transaction between an originating 
computer, the originating computer comprising a computer usable medium having computer 
readable instruction code means stored therein, and a destination computer, the destination 
computer comprising a computer usable medium having computer readable instruction code 
means stored therein, the system comprising the steps of 

computer readable instruction code means for processing transaction data from an 
application suite at the originating computer; 

computer readable instruction code means for generating standardized data 
transactions based on predefined definitions; 

computer readable instruction code means for sending the standardized 
transaction data from the originating computer to the destination computer; 

computer readable instruction code means for receiving the standardized 
transaction data by the destination computer; 

computer readable instruction code means for generating transaction data based 
on the attributes of the destination computer and storing the transaction data at the 
destination computer; and, 

computer readable instruction code means for processing the transaction data by a 
target application suite at the destination computer. 

6. (Currently Amended) A method for exchanging data between an initiator and a 
responder, the steps comprising: 

sending a session request package from the initiator to the responder; 
generating a first key pair by the responder, the first key pair comprising a responder 
public key and a responder private key; 

823129_l.doc 



-3- 



Appl. No. 09/836,894 

Reply to Office Action of October 18, 2004 

sending a session confirm from the responder to the initiato r, the session confirm 
comprising the responder public key ; 

generating a second key pair by the initiator, the second key pair comprising an initiator 
public key and an initiator private key; 

sending a key request from the initiator to the responder , the key request comprising the 
initiator public key and encoded using the responder public key ; 

confirming the initiator's key request has been encoded correctly by the 

responder; 

sending a key confirm from the responder to the initiator; 
confirming the responder' s key confirm has been encoded correctly by the 
initiator; 

sending a data package by the initiator to the responder; 
replying with a package confirm by the responder to the initiator; and, 
repeating the sending a data package step and replying step until the initiator 
sends an end request. 

7 (Original) The method for exchanging data between an initiator and a responder 
as in claim 6, wherein the session request package comprises the initiator's EP address and profile 
data. 

8. (Cancelled) 

9. (Currently Amended) The method for exchanging data between an initiator and a 
responder as in claim 6, wherein the session confirm comprises: 

th e s e ssion k e y pair; 

the r e spond e r' s public s e ssion k e y; 

the responder' s profile data. 
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10. (Original) The method for exchanging data between an initiator and a responder 
as in claim 6, the key request comprises: 

the initiator's public session key; 
the initiator's profile data. 

Claims 11-12 (Cancelled) 

13. (Original) The method for exchanging data between an initiator and a responder 
as in claim 6, wherein the confirming the initiator's key request step comprises: 

decoding the key request; and, 

verifying the key request is properly formatted. 

14. (Original) The method for exchanging date between an initiator and a responder 
as in claim 6, wherein the confirming the responder' s key confirm step comprises: 

decoding the key confirm, and 

verifying the key confirm is properly formatted. 

15. (Original) The method for exchanging data between an initiator and a responder 
as in claim 6, wherein the sending a data package steps further comprises converting the data 
from its original format to a standardized format. 

16. (Original) The method for exchanging data between an initiator and a responder 
as in claim 15, wherein the replying step further comprises converting the data from the 
standardized format to a format used by the responder. 
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17. (Original) The method for exchanging data between an initiator and a responder 
as in claim 15, wherein the standardized format is EDI. 

1 8. (Original) A system for exchanging data between an initiator computer and a 
responder computer, the initiator computer comprising a computer usable medium having 
computer readable instruction code means stored therein, and the responder computer 
comprising a computer usable medium having computer readable instruction code means stored 
therein, the system comprising the steps of: 

computer readable instruction code means for sending a session request package 
from the initiator to the responder; 

computer readable instruction code means for sending a session confirm from the 
responder to the initiator; 

computer readable instruction code means for sending a key request from the 
initiator to the responder; 

computer readable instruction code means for confirming the initiator's key 
request has been encoded correctly by the responder; 

computer readable instruction code means for sending a key confirm from the 
responder to the initiator; 

computer readable instruction code means for confirming the responder 5 s key 
confirm has been encoded correctly by the initiator; 

computer readable instruction code means for confirming the responder' s key 
confirm has been encoded correctly by the initiator; 

computer readable instruction code means for sending a data package by the 
initiator to the responder; 

computer readable instruction code means for replying with a package confirm by 
the responder to the initiator; and, 
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repeating the sending a data package step and replying step until the initiator 
sends an end request. 

19. (Original) A system for exchanging data between an initiator computer and a 
responder computer as in claim 18, wherein the session request package comprises the initiator's 
IP address and profile data. 

20. (Original) A system for exchanging data between an initiator computer and a 
responder computer as in claim 18, wherein the session confirm step further comprises computer 
readable instruction code means for generating a new session key pair having a responder' s 
public session key. 

21 . (Original) A system for exchanging data between an initiator computer and a 
responder computer as in claim 20, wherein the session confirm comprises: 

the session key pair; 

the responder' s public session key; and, 

the responder' s profile data. 

22. (Original) A system for exchanging data between an initiator computer and a 
responder computer as in claim 18, the key request comprises: 

the initiator's public session key; and, 
the initiator's profile data. 

23. (Original) A system for exchanging data between an initiator computer and a 
responder computer, as in claim 18, wherein the session confirm comprises the responder' s 
public session key. 
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24. (Original) The method for exchanging data between an initiator and a responder 
as in claim 18, wherein the key request is encoded with the responder's public session key. 

25. (Original) A system for exchanging data between an initiator computer and a 
responder computer as in claim 18, wherein the system further comprising: 

computer readable instruction code means for decoding the key request; and, 
computer readable instruction code means for verifying the key request is properly 
formatted. 

26. (Original) A system for exchanging data between an initiator computer and a 
responder computer as in claim 18, wherein the system further comprising: 

computer readable instruction code means for decoding the key confirm; and, 
computer readable instruction code means for verifying the key confirm is 
properly formatted. 

27. (Original) A method for exchanging data between an initiator and a responder, the 
initiator steps comprising: 

sending a session request package; 
receiving a session confirm; 
sending a key request; 
receiving a key confirm; 

confirming the key confirm has been encoded correctly; 
sending a data package; 
receiving a package confirm; and, 
sending a session end request. 
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28 (Original) The method for exchanging data between an initiator and a responder 
as in claim 27, wherein the session request package comprises the initiator's IP address, and 
profile data. 

29 (Original) The method for exchanging data between an initiator and a responder 
as in claim 27, wherein the session confirm step further comprises the initiator receiving a 
session key pair and a responder' s public session key. 

30. (Original) The method for exchanging data between an initiator and a responder 
as in claim 29, wherein the session confirm comprises: 

the session key pair; 
the responder' s public session key; 
the responder' s profile data. 

3 1 . (Original) The method for exchanging data between an initiator and a responder 
as in claim 27, the key request comprises: 

the initiator's public session key; 
the initiator's profile data. 

32. (Original) The method for exchanging data between an initiator and a responder 
as in claim 31, wherein the session confirm further comprises the responder' s public session key. 

33. (Original) The method for exchanging data between an initiator and a responder 
as in claim 32, wherein the key request is encoded with the responder's public session key. 
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34. (Original) The method for exchanging data between an initiator and a responder 
as in claim 33, the confirming the key confirm has been encoded correctly step further 
comprising: 

decoding the key confirm with the responder' s public session key; 
verifying the key confirm has been formatted correctly. 

35. (Original) A computer usable medium having computer readable instruction code 
means stored therein for enabling a computer to exchange transactions with a separate computer, 
comprising: 

computer readable instruction code means for causing the computer to send a 
session request package; 

computer readable instruction code means for causing the computer to receive a 
session confirm; 

computer readable instruction code means for causing the computer to send a key 
request; 

computer readable instruction code means for causing the computer to receive a 
key confirm; 

computer readable instruction code means for confirming the key confirm has 
been encoded correctly; 

computer readable instruction code means for causing the computer to send a data 
package; 

computer readable instruction code means for causing the computer to receive a 
package confirm; and, 

computer readable instruction code means for causing the computer to send a 
session end request. 
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36. (Original) The computer usable medium as in claim 35, wherein the session 
request package comprises an IP address and profile data. 

37. (Original) The computer usable medium as in claim 35, wherein the session 
confirm further comprises a public session key. 

39. (Original) The computer usable medium as in claim 35, wherein the session 
confirm comprises: 

a session key pair; 

a public session key; and 

a profile data. 

40. (Original) The computer usable medium as in claim 35, the key request 
comprises: 

a public session key for the separate computer; 
a profile for the separate computer. 

41 . (Original) The computer usable medium as in claim 35, further comprising 
computer readable instruction code means for decoding the key request with the public session 
key. 

42. (Original) The computer usable medium as in claim 35, the computer readable 
instruction code means for confirming the key confirm has been encoded correctly further 
comprising: 

computer readable instruction code means for decoding the key confirm; and 
computer readable instruction code means for verifying the key confirm is properly 
formatted. 

823 129.1. doc 



-11- 



Appl. No. 09/836,894 

Reply to Office Action of October 18, 2004 

43. (Original) A method for exchanging data between an initiator and a responder, the 
responder steps comprising: 

receiving a session request package; 
sending a session confirm; 
receiving a key request; 

confirming the initiator's key request has been encoded correctly; 

sending a key confirm; 

receiving a data package; 

replying with a package confirm; and, 

repeating the receiving a data package step and replying step until receiving an 
end session request. 

44. (Original) The method for exchanging data between an initiator and a responder 
as in claim 43 , wherein the session request package comprises the initiator's IP address and 
profile data. 

45. (Original) The method for exchanging data between an initiator and a responder 
as in claim 43, wherein the session confirm step comprises the step of generating a new session 
key pair having a public session key. 

46. (Original) The method for exchanging data between an initiator and a responder 
as in claim 43, wherein the session confirm comprises: 

the session key pair; 
the public session key; 
a profile data. 
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47. (Original) The method for exchanging data between an initiator and a responder 
as in claim 43, the key request comprises: 

the initiator's public session key; and, 
the initiator's profile data. 

48. (Original) The method for exchanging data between an initiator and a responder 
as in claim 43, wherein the session confirm further comprises the public session key. 

49. (Original) The method for exchanging data between an initiator and a responder 
as in claim 48, wherein the key request is encoded with the public session key. 

50. (Original) The method for exchanging data between an initiator and a responder 
as in claim 43, wherein the confirming step comprises: 

decoding the key request; and, 

verifying the key request is properly formatted. 

5 1 . (Original) A computer usable medium having computer readable instruction code 
means stored therein for enabling a computer to exchange transactions with a separate computer, 
comprising: 

computer readable instruction code means for causing the computer to receive a 
session request package from an initiator; 

computer readable instruction code means for causing the computer to send a 
session confirm; 

computer readable instruction code means for causing the computer to receive a 
key request; 

computer readable instruction code means for causing the computer to confirm the 
key request has been encoded correctly; 
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computer readable instruction code means for causing the computer to send a key 
confirm; 

computer readable instruction code means for causing the computer to receive a 
data package; 

computer readable instruction code means for causing the computer to reply with 
a package confirm; and, 

computer readable instruction code means for causing the computer to receiving 
data packages and reply with package confirms until the computer receives an end session 
request. 

52. (Original) The computer useable medium as in claim 5 1 , wherein the session 
request package comprises the initiator's IP address and profile data. 

53. (Original) The computer usable medium as in claim 51, further comprising 
computer readable instruction code means for causing the computer to generate a new session 
key pair having a public session key. 

54. (Original) The computer useable medium as in claim 53, wherein the session 
confirm comprises: 

the session key pair; 
the public session key; 
a profile data. 

(Original) The computer useable medium as in claim 54, the key request 

the initiator's public session key; 
the initiator's profile data. 
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56. (Original) The computer useable medium as in claim 55, wherein the session 
confirm further comprises the public session key. 

57. (Original) The computer useable medium as in claim 56, wherein the key request 
is encoded with the public session key. 

58. (Original) The computer useable medium as in claim 51, wherein the confirming 
step comprises: 

decoding the key request; and, 

verifying the key request is properly formatted. 

59. (Previously Amended) A system for exchanging data, comprising 

a) a third party server; 

b) a web host server; 

c) a commerce server having a trading partner profile table; 

d) a first network connecting the customer computer, web host server and 
commerce server; 

e) an applications server connected to the commerce server by a second 
network, the applications server responsive to remote procedure calls from the commerce 
server. 

60. (Withdrawn) The system for exchanging data as in claim 59, wherein the first 
network comprises a plurality of segments. 
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61. (Withdrawn) The system for exchanging data as in claim 60, wherein at least one 
segment of the first network is selected from the group consisting of wireless, fiber optic, 
infrared, a hand held computer, and a voice recognition device. 

62. (Withdrawn) The system for exchanging data as in claim 59, wherein the second 
network comprises a plurality of segments. 

63. (Withdrawn) The system for exchanging data as in claim 62, wherein at least one 
segment of the second network is selected from the group consisting of wireless, fiber optic, 
infrared, a hand held computer, and a voice recognition device. 

64. (Withdrawn) The system for exchanging data as in claim 63, wherein the initiator 
further comprises a web browser. 

65. (Withdrawn) A method for exchanging data, comprising; 

a) an initiator who initiates the transaction, the transaction including data, 
selected from the group consisting of an application server, a third party server, a web 
host server, and a commerce server; 

b) a responder which receives the transaction selected from the group 
consisting of the application server, the third party server, the web host server, and the 
commerce server; 

c) a point to point secure transfer protocol using high level encryption for 
sending and receiving the transaction, the protocol comprising; 

1) computer readable instruction code means for establishing an active 
listener via an event wait state; 

2) computer readable instruction code means for accessing the trading 
partner profile table and determining the identity of the initiator, what transactions 
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the initiator and responder have mutually agreed to allow, determine a location 
and format of data for the transaction and determine allowable values; 

3) computer readable instruction code means for generating a security 
error and terminating the code if the initiator is not authorized; 

4) computer readable instruction code means for writing activity to an 
activity log; 

5) computer readable instruction code means for determining and 
processing an event state, the event state selected from the group consisting of 
idle, session request, session confirm, key request, key confirm, data package, 
next data package, package confirm, end request, and end confirm; 

6) establishing a business conversation between trading partners, the 
business conversation comprised of specific time or event driven transaction sets; 

7) computer readable instruction code means for building a header 
and cargo appropriate for the event state; 

8) computer readable instruction code means for generating a unique 
encryption key pair for each transmission; 

9) computer readable instructions for compressing and encrypting the 
data using the unique encryption key pair; 

10) computer readable instruction means for sending the data to the 
responder that prevents the data from being stored on a server hard drive while the 
data is in transit between the initiator and responder; 

1 1) computer readable instruction code means for receiving, decrypting 
and decompressing the data. 

66. (Withdrawn) The method for exchanging data as in claim 65, wherein the data 
comprises at least one of the group consisting of text., binary objects, image, a sound recording, a 
data stream, EDI, XML, and EDIFACT. 
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67. (Withdrawn) The method for exchanging data as in claim 65 , wherein a unique 
signature key generated on the hosting system is derived from a passphrase generated from user 
input and unique system identifiers facilitating non-repudiation. 

68. (Withdrawn) The method for exchanging data as in claim 65, wherein sharing of 
public keys is directly between trading partners only and used during a single session only. 

69. (Withdrawn) The method for exchanging data as in claim 65, wherein the 
initiator's and responded s public keys are uniquely created by the insertion of string values into 
randomly chosen positions. 

70. (Withdrawn) The method for exchanging data as in claim 65, wherein bi- 
directional verification of sender and recipient identities is accomplished prior to any exchange 
of data. 

71 . (Withdrawn) The method for exchanging data as in claim 65, wherein separate 
exchanges of public signature keys, used for trading partner validation, and public exchange 
keys, used for encoding/decoding of data, are facilitated. 

72. (Withdrawn) The method for exchanging data as in claim 65, wherein the 
initiator maintains full control of data provided to validated partners. 

73. (Withdrawn) The method for exchanging data as in claim 65, wherein an entire 
data package is encoded prior to transmission. 
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74. (Withdrawn) The method for exchanging data as in claim 65, wherein data 
receipt by the intended recipient is verified. 

75. (Withdrawn) A queue based method for initiating and managing a business 
conversation, wherein an inbound transmission originates from the group consisting of a web 
host and a third party server, the business conversation comprising at least one transaction and 
comprising a commerce server, the commerce server comprising a trading partner profile table, a 
transaction engine queue, a reply requirements queue, a transaction engine outbound queue, a 
SDS transaction queue, and a transport protocol outbound queue, the commerce server being 
communicatively coupled by a first network to at least one of a web host server and a third party 
server, and the commerce server being communicatively coupled by a second network to an 
application server, the steps comprising: 

a) receiving an inbound request, determining the initiator and responder, 
decode and decompress the request, determine the output destination and adding 
to the transaction engine queue; 

b) parsing the inbound transmission into at least one transaction, authorizing 
the initiator, preparing a data structure for each transaction and returning the 
transaction to the transaction engine queue; 

c) building and managing the business conversation by utilizing the business 
transaction map and forwarding the transactions to the appropriate queue selected 
from the reply requirements queue, the transport protocol outbound queue and the 
SDS transaction queue; 

76. (Withdrawn) The queue based method for initiating a business conversation 
according to claim 75 wherein the inbound transmission is received from the group consisting of 
the web host server and third party server communicatively coupled to the first network. 
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77. (Withdrawn) The queue based method for initiating a business conversation 
according to claim 75 wherein the final destination of the transaction is the application server. 

78. (Withdrawn) The queue based method for initiating a business conversation 
according to claim 75 wherein step (c) further comprises building and managing at least one 
future conversational transaction and forwarding the future transaction to the reply requirements 
queue. 

79. (Withdrawn) The queue based method for initiating a business conversation 
according to claim 75 wherein step (c) further comprises sending an outbound transaction to the 
transport protocol outbound queue. 

80. (Withdrawn) The queue based method for initiating a business conversation 
according to claim 75 wherein step (c) further comprises sending the transaction from the SDS 
transaction queue to its final destination, the application server. 

8 1 . (Withdrawn) A queue based method for initiating and managing a business 
conversation, wherein an outbound transmission originates from an applications server, the 
business conversation comprising at least one transaction and comprising a commerce server, the 
commerce server comprising a trading partner profile table, a transaction engine queue, a reply 
requirements queue, a transaction engine outbound queue, a SDS transaction queue, and a 
transport protocol outbound queue, the commerce server being communicatively coupled by a 
first network to at least one of a web host server and a third party server, and the commerce 
server being communicatively coupled by a second network to an application server, the steps 
comprising: 

a) receiving an outbound transaction, reading, parsing and formatting of the 
transaction and adding to the transaction engine outbound queue; 
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b) parsing of transaction to the recipients pre-determined format based on the 
overall database structure map; 

c) determining the recipient of at least one transaction, building the outbound 
transaction and forwarding to the transaction engine queue; 

d) building and managing of at least one future conversational transaction 
and forwarding the future transaction to the reply requirements queue; 

e) compressing, logging and encoding the outbound transaction; 

f) transmission of the transaction to it's final destination. 

82. (Withdrawn) The queue based method for sending an outbound 
transmission of a business conversation according to claim 81 wherein the final destination of the 
outbound transmission is selected from the group of the web host server and third party server on 
the first network. 

83. (New) A method for exchanging data according to claim 6, the confirming the 
responder's key confirm comprises verifying the responder's key confirm was encoded with the 
initiator's public key. 

84. (New) A method for exchanging data according to claim 6, further comprising: 
the sending a data package by the initiator comprises encoding the data package with the 

responder public key; and 

the replying with a package confirm further comprises encoding the package confirm with 
the initiator public key. 

85. (New) A method for exchanging data according to claim 6, further comprising: 
determining by the responder when the session request is received whether a queue limit 

counter has been exceeded. 
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86. (New) A method for exchanging data according to claim 85, further comprising: 
aborting the method for exchanging data responsive to exceeding the queue limit counter; 

and 

writing an error log entry responsive to exceeding the queue limit counter. 
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